Welcome back @McGonagall666 . Can you share the service details and service, router policies. Also, which destination you are trying to reach. I see a couple destination are being added to the intercept. Just trying to confirm that.
{"file":"github.com/openziti/ziti/tunnel/intercept/svcpoll.go:226","func":"github.com/openziti/ziti/tunnel/intercept.(*ServiceListener).addService","level":"info","msg":"starting tunnel for newly available service chandao","serviceId":"4aoc4SC0vFqqxXi5ZkrePn","serviceName":"chandao","time":"2025-03-05T12:32:59.466Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:229","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*interceptor).newTproxy","level":"info","msg":"tproxy listening on tcp:127.0.0.1:32817","time":"2025-03-05T12:32:59.466Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:556","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t mangle -A NF-INTERCEPT [-m comment --comment chandao -d 100.64.0.2/32 -p tcp --dport 80:80 -j TPROXY --tproxy-mark 0x1/0x1 --on-ip=127.0.0.1 --on-port=32817]","time":"2025-03-05T12:32:59.466Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:570","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t filter -A NF-INTERCEPT [-i ens160 -m comment --comment chandao -d 100.64.0.2/32 -p tcp --dport 80:80 -j ACCEPT]","time":"2025-03-05T12:32:59.468Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:556","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t mangle -A NF-INTERCEPT [-m comment --comment chandao -d 100.64.0.2/32 -p tcp --dport 8080:8080 -j TPROXY --tproxy-mark 0x1/0x1 --on-ip=127.0.0.1 --on-port=32817]","time":"2025-03-05T12:32:59.469Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:570","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t filter -A NF-INTERCEPT [-i ens160 -m comment --comment chandao -d 100.64.0.2/32 -p tcp --dport 8080:8080 -j ACCEPT]","time":"2025-03-05T12:32:59.471Z"}
{"file":"github.com/openziti/ziti/tunnel/dns/server.go:271","func":"github.com/openziti/ziti/tunnel/dns.(*resolver).AddHostname","level":"info","msg":"adding chandao.myy.com = 100.64.0.2 to resolver","time":"2025-03-05T12:32:59.472Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:556","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t mangle -A NF-INTERCEPT [-m comment --comment chandao -d 100.64.0.3/32 -p tcp --dport 80:80 -j TPROXY --tproxy-mark 0x1/0x1 --on-ip=127.0.0.1 --on-port=32817]","time":"2025-03-05T12:32:59.472Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:570","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t filter -A NF-INTERCEPT [-i ens160 -m comment --comment chandao -d 100.64.0.3/32 -p tcp --dport 80:80 -j ACCEPT]","time":"2025-03-05T12:32:59.474Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:556","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t mangle -A NF-INTERCEPT [-m comment --comment chandao -d 100.64.0.3/32 -p tcp --dport 8080:8080 -j TPROXY --tproxy-mark 0x1/0x1 --on-ip=127.0.0.1 --on-port=32817]","time":"2025-03-05T12:32:59.475Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:570","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t filter -A NF-INTERCEPT [-i ens160 -m comment --comment chandao -d 100.64.0.3/32 -p tcp --dport 8080:8080 -j ACCEPT]","time":"2025-03-05T12:32:59.477Z"}
{"file":"github.com/openziti/ziti/tunnel/dns/server.go:271","func":"github.com/openziti/ziti/tunnel/dns.(*resolver).AddHostname","level":"info","msg":"adding chandao.idn = 100.64.0.3 to resolver","time":"2025-03-05T12:32:59.479Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:556","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t mangle -A NF-INTERCEPT [-m comment --comment chandao -d 192.16.1.3/32 -p tcp --dport 80:80 -j TPROXY --tproxy-mark 0x1/0x1 --on-ip=127.0.0.1 --on-port=32817]","time":"2025-03-05T12:32:59.479Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:570","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t filter -A NF-INTERCEPT [-i ens160 -m comment --comment chandao -d 192.16.1.3/32 -p tcp --dport 80:80 -j ACCEPT]","time":"2025-03-05T12:32:59.481Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:556","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t mangle -A NF-INTERCEPT [-m comment --comment chandao -d 192.16.1.3/32 -p tcp --dport 8080:8080 -j TPROXY --tproxy-mark 0x1/0x1 --on-ip=127.0.0.1 --on-port=32817]","time":"2025-03-05T12:32:59.482Z"}
{"file":"github.com/openziti/ziti/tunnel/intercept/tproxy/tproxy_linux.go:570","func":"github.com/openziti/ziti/tunnel/intercept/tproxy.(*tProxy).addInterceptAddr","level":"info","msg":"Adding rule iptables -t filter -A NF-INTERCEPT [-i ens160 -m comment --comment chandao -d 192.16.1.3/32 -p tcp --dport 8080:8080 -j ACCEPT]","time":"2025-03-05T12:32:59.484Z"}